Lucene search
Scott Kingsley ClarkWPVDB-ID:ECB1E36F-9C6E-4754-8878-03C97194644DHistoryMar 04, 2024 - 12:00 a.m.
Schema Pro < 2.7.16 - Contributor+ Custom Field Access
2024-03-0400:00:00
Scott Kingsley Clark
wpscan.com
4
schema pro
contributor
custom fields
access
vulnerability
shortcode
Description The plugin does not validate post access allowing a contributor user to access custom fields on any post regardless of post type or status via a shortcode
PoC
As a contributor, add/edit a post and embed [aiosrs_pro_custom_field post_id="ANY_POST_ID" field_key="ANY_META_KEY"] and specify/guess any post ID and meta key you may want to access Save the post and preview it to disclose the post meta key value
Related
cvelist
cvelist
CVE-2024-1564 Schema Pro < 2.7.16 - Contributor+ Custom Field Access
2024-03-25 05:00:01
nvd
nvd
CVE-2024-1564
2024-03-25 05:15:50
wpexploit
wpexploit
Schema Pro < 2.7.16 - Contributor+ Custom Field Access
2024-03-04 00:00:00
vulnrichment
vulnrichment
CVE-2024-1564 Schema Pro < 2.7.16 - Contributor+ Custom Field Access
2024-03-25 05:00:01
cve
cve
CVE-2024-1564
2024-03-25 05:15:50
wordfence
wordfence
AI Score
9.3
Confidence
High
EPSS
0
Percentile
9.0%
Related for WPVDB-ID:ECB1E36F-9C6E-4754-8878-03C97194644D